Mahoodle://Integrating Mahara with Moodle 


How many times each day do you find yourself logging 
on to some service or other? As web applications 
grow in popularity, users are obliged to juggle 
username and password details for more websites, 
email programs and desktop applications, and there’s 
no evidence that the trend is slowing. 


As administrators of interlinked web applications, 
we welcome any opportunity to make our systems 
easier for people to access and use, and Single-Sign- 
On (or SSO) is one great way to achieve that. Simply 
put, a user logs on to one application, and by clicking 
on specially crafted links that we provide there, is 
transparently authenticated to a second application, 
even though it may be running on another machine, 
in another room, on another continent. 


When SSO works well, it can dramatically improve 
the sign-up experience for new users of your 
application: 


No need to ‘create an account’ 

No need to find an unused username 

No need to think up and remember yet another 
password 

No new URL to remember 

No need to log in to yet another application 
No need to upload the same profile mugshot to 
the new application 


If you could smooth the path for new users of your 
application by removing all these obstacles, what 
impact do you think that might have on uptake? 


With the release of Mahara 0.8.1 and Moodle 1.9, 
you can now configure your Moodle so that any user 
who logs in to Moodle can click on a link that will 
bring them to your Mahara site, and automatically 
log them on to their Mahara account. If they don't 
yet have an account on Mahara, their user data will 
be imported from Moodle, and used to populate their 
Mahara account. If they have a profile picture in 
Moodle, that will also be imported to their Mahara 
account. 


The user can then begin using the Mahara account 
with absolutely zero configuration required. 


Many Mahara users will want to keep using their 
Mahara account long after their formal relationship 
with your institution has ended, and your institution 


might well have an interest in keeping alive links to 
its alumni. 


With a few clicks of the mouse, you can configure 
multiple points of entry for your Mahara users. 


If they want to sign on directly to Mahara, they can 
do so with a username and password. If they've 
already signed on to Moodle, they can click on a link 
to SSO into Mahara. When their Moodle account is 
no longer active, they can no longer SSO, but their 
Mahara account remains available via direct 
authentication. 


Conversely, if you're the administrator of an existing 
Mahara system you might want to configure SSO to 
work in the opposite direction, creating an 
opportunity for your users to SSO from Mahara to a 
Moodle server. If you choose this configuration for 
your users, you can elect to have user records 
generated for them at the Moodle server on arrival. 


rw 
This document outlines three scenarios for 


administrators of Moodle and Mahara systems, to 
assist in configuring their applications to interoperate. 


1://Basic Networking 


Chapter one focuses on tasks that are common 
to all three scenarios. 


2://SSO into Mahara 


Chapter two will introduce what's likely to be 
the most widely deployed option, of SSO from 
Moodle to Mahara. 


3://Advanced SSO into Mahara 


In chapter three, we'll look at some other 
options for Mahara authentication, considering 
the confguration of multiple authentication 
plugins, how they can be combined to create 
an authentication stack, and how we can 
combine them to offer a single user multiple 
routes into Mahara. 


4://SSO into Moodle 


In the final chapter, we'll introduce SSO from 
Mahara to Moodle. 
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1://Basic Networking ӨӨ _ Lifeworks: Administration: Notifications 


The normal install procedures for Moodle and Mahara 
are already well documented. We'll assume that you've 
already installed both Mahara and Moodle, and that 
the sites are ready for an administrator to start 
configuring users and courses. If either site is already 
in use, that's fine as well. litelWorks 


Make sure that you are logged onto Moodle as an 
administrator: Lifeworks ^ Administration > Notifications (Blocks editing on ) 


Site Administration 


B Notifications The cron.php maintenance script has not been run for at least 24 hours. @ 
Oo Users 
C Courses 


о 
Grades Please register your site to remove this button 
O Location 


CJ Language (Moodie Registration ) 
Modules 

а Security 

e Appearance 

o Front Page vi vy y dev (2007081302) 

right © 1999 onwards, Martin 

a Server and many other contributors. 

Oo Networking GNU Public License 

C Reports k 


[=] Miscellaneous 


( Search ) 


Admin bookmarks 


bookmark this page 


@ Moodie Docs for this page 
You are logged in as Admin User (Logout) 


Home 
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1://Basic Networking: Moodle 


From the Site Administration menu, click on 
Networking >> Settings, and change the Networking 
value to 'On'. Click 'Save Changes'. 


Before we do any more configuration on Moodle, we 
need to enable networking on Mahara. 


Lifeworks: Administration: Networking: Settings ——— 
2% m http: //moodle.mahoodle.com/admin/mnet/index.php © "la- Google 


Wikipedia Apple дыра а ies .er on linux E2  AudioSearch RegalPalms 


Lifeworks > Administration - Networking - Settings 


SSS ЫЙ кешуше | 


(Свїюскз editing on )| 


© Notifications 


[as ts Public key: 


[m] Security 
б Appearance 
Front Раде 
б Server 
& Networking 
и Settings 
ы Poors 
2 550 Access Contr! 
© Enrolments 
B XML-RPC hosts 
E Reporis 
С Miscelisneous 


K Search) 


Admin bookmarks 


Valid until: 


-----BEGIN CERTIPICATE----- 
MIIC1jCCAj*gAwIBAgIBADANBgkghkiG9wO0BAQOPADCBsDELMAKGAlUEBhMCT1ox 
EzARBgNVBAgTCldlbGxpbmd0b24xEzARBgNVBAcTCldlbGxpbmd0b24xGzAZBgNV 
BAoTEkxpZmVXb3JrcyBlLWNhbXBlczEPMAOGAlUECxMGTW9v2Gx1MSMwIQYDVQOD 
ExpodHRwOi8vbW9vZGxlLmlhaG9v2GxlLmNvbTEKMCIGCSqGSIb3DQEJARYVZG9u 
YWxAY2POYWxSc3QubmVOLm56MB4XDTA3MDgxNTA3NDMxMFOXDTA3MDKxMjA3NDMx 
MPowgbAxCzAJBgNVBAYTAkSaMRMwEQYDVOOIEwpXZWxsaW5ndG9uMRMwEQYDVQOH 
EwpXZWxsaW5ndG9uMRewGOYDVOOKExJMaWZ1V29ya3Mg281jYWlwdXMxDzANBgGNV 
BAsTBk1vb2Rs2TEjMCEGAlUEAxMaaHRÜcDovL21vb2RsZ2S5tYWhvb2Rs285jb20x 
JDAiBgkghkiG9wOBCOEWPWRvbmPsOGNhdGPseXNOLm5ldC5uejCBnzANBgkghkiG 
9wOBAQEPFAAOBjOQAwgYkCgYEA14KtCUOXXBWyWu4 /VAIHR6yBlfaVB7D2VUd85UNf 
W*M3A6rJp2hZdvWMvtUNS8SjSEQOLRPYdUza7r4BgsXMYNboDeVi5hGWillDMps3jn 
g/Q05niH0J39/AKH40VSko4MellzETMYy7TiOC3DTPLxEYHCyqgUBSEDzPqa9gBl4x 
4PKCAwEAATANBgkdhkiG9wO0BAQOPAAOBgQAeH26ciJjs96VatVVJBm02 /EsnYi6G 
dYlbgl7KXzdVBctYJZPKUQ6ncn5w7DWj6XH3uY7nwDaJI*NdlfLbbkc3dbaSWvKJ 
0za75yx2YZPyvPubz*adleVUfZaVxO0ilzacwcfP4NoMf7czgJSgwegcypgj7rM7* 
Hc7/A9ubwOy4TQ-- 


Wednesday, 12 September 2007, 07:43 PM 


® Off 
О On 
(Save changes ) 


Moodle automatically rotates your keys every 28 days (by default) but you have the option to manually expire this key at any 


time. rore рны be useful if you believe this key has been compromised. A replacement will be immediately automatically 


лир this key will make it impossible for other Moodles to communicate with you, until you manually contact each 
administrator and provide them with your new key. 


bookmark this page 


Delete ( Delete ) 
This Sane 
Key 


@ Moodie Docs for this page 


You are logged in as Admin User (Logout) 


Home 
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1://Basic Networking: Mahara eoo Mahara 
Make sure that your Mahara site is set up, and that «с + ][ ^ A] Өпир.//таһага.таһоойе.сот/айтїп/ © О; Google 
you're logged on as an Adminstrator: LH How To Compile A Kernel Wikipedia Apple Build aWeb..eronlinux E2  AudioSearch RegalPalms Bolton  Creelan » 


Click on Site Administration, and then on Networking: ; = Mahara 


Administration 


Configure Site 
> Site options - Configure basic site options such as the name, language and theme 
> Site pages - Edit the core site content 
> Site menu - Manage the links and files within the Main Menus 
> Admin Files - Upload and administer files that can be put in the menus 
> — Configure networking for Mahara 


Manage Users 
> Suspended Users - Suspend or reactivate users from using the site 
> Staff Users - Assign users Staff permissions 
> Admin Users - Assign Site Administrator access rights 
» Admin Notifications - Overview of how administrators receive system notifications 
> Institutions - Install and manage installed institutions 
> Add Users by CSV - Upload a CSV file containing new users 
> User Search - Search all users and perform administrative actions on them 


Administer Extensions 


> Plugin Administration - Install and configure plugins 
> Configure View Templates - View installed templates to check their validity 


Terms and Conditions | Privacy Statement | About | Contact Us 


Go to "http://mahara.mahoodle.com/admin/site/networking.php" 
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1://Basic Networking: Mahara 


On the networking page, your WWW Root should be 
listed. This is the canonical address at which your 
Mahara site can be accessed, and you'll need to enter 
this address into your Moodle site later on. 


Beneath the WWW Root, is the Public encryption 
key. This is a file of seemingly random text, beginning 
with the line '----- BEGIN CERTIFICATE----- '. The 
expiry date of the key is noted underneath. Mahara 
will automatically generate a new key when this one 


рр ————— 


Return to Site 


You are logged in as Admin User (admin) 


Site Options Site Pages Site Menu Admin Files 


Networking 


What Is Networking? 


Mahara's networking features allow it to communicate with Mahara or Moodle sites running on the same or another machine. If 
networking is enabled, you can use it to configure single-sign-on for users who log on at either Moodle or Mahara. 


WWW Root 
http;//mahara.mahoodle.com/ 


Public key 


-----HEGIN CERTIFICATE 

HIICWjCCAiu gawIBAgIBADANEgk gh kic 9"ÜBAQQFADCBpjELHAkCA1UEBhHCTLox 
ЕЗАЯНЧИУНА АТС ldlbaxpbmdob2 4x ОгАИНЧИУНВАОТВИЯ1ТЕЕТ b2EPHAOGALUECHNG 
ТИР OXETHNG 2wDOYDVOOLEWZWiWhhomExIzAhHqNVBAHTOmhódHAGLYy 9tYwWhhomEu 
DATE ob25kbCUvuY25tHSowKAYIKofIhvoMAQkHEhtub3JlozxSQclhaGFpYSStYWhv 
b2xz185jb20wHhoNHDcwO DE 1H Dozo Mp ith оин Dow TET H DozOTHy i jC Bp jELHAKk 
AlUEHhHCTloxEzARBQWYBAqTCldlbcxpbmdób24xDzANBqNYBACTHIRLIEFybzEP 
HAOGALUECHNGTWE OYEJhHOQ ZwDoYDVOOLEWINYWhhomExIzAhBqNWYBAHTOmho0 ЗНАЄ 
Ly5tYWhhomEubWE ob25kbGUuY25tH SowKAYTKoIIhvoKAQkHEhtvubzI lozxSQGlh 
aGFypYSstYWhvb2Az225jb2)wgIZwDQYIKofIhvoMAQEHBOADqYOAMICIAOZBHAKZO 
XaDHYOyhxfóHqUrp9THx 120 zhWnEKQbpG] ovr /Ү j5do/Td/ omDqzKY2 ok донуз £2 
Y250dI0L/b?h-hfizHBomiKlFDOEXHióhoxjxC4qoxeoTIzoqgIY2tffvRS1214YP 
OAPAGevuIP qnü3RP/IdI9GZmjRIDUO20fTRTKVIJAGTHAAEWDQYIKOIITvoNAQEE 
BOADQYEATBQIpCflfickObexrdz22bHQHTC6SLLdAUZHICidZ2K7z TuHhpuCP? emt& 
"EttAzHiSCCHIhVIMWW ZLiy2LqESecunaVTKEKIkW2RdaECxrolfQpknjvsed7u 
18FPZOZPBODi5IdfesICnTHCKXKoO qi?WweXT£5225z2rQPTZIE Qe 

-----EMD CERTIFICATE 


This public key is automatically generated, and rotated every 28 days 


Public key expires 
12 September 2007, 07:39 PM 
Enable networking 
Yes |} 
Allow your Шпага server to communicate with servers running Moodle and other applications 
Auto-register all hosts 
(No 19 


Create an institution record for any host that connects to you, and allow its users 10 log on to Малага 


( Save changes ) 


Terms and Conditions | Privacy Statement | About | Contact Us 
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A Word On Encryption 


When we think of a key — for example the key for a 
padlock, we imagine that it can both lock and unlock 
that padlock. Although we call these lines of text your 
‘public key', this key is only used to lock' data — not 
to unlock it. This key is part of a pair, each of which 
is useless without the other. One locks the data, and 
the other — your private key — unlocks it. 


So — it's perfectly safe to publish this key without 
worrying about the security of your data. In fact — 
we supply this key to other servers, and they use it 
to encrypt data that they want to send to us. They 
know that the data it encrypts can only be decrypted 
by us, as we hold the corresponding private key. 
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1://Basic Networking: Mahara 


Click on the Enable Networking pulldown, and choose 
‘Yes’. The other pulldown menu — 'Auto-register all 
hosts’, is just fine set to 'No'. Click оп 'Save changes’ 


to continue. 
Return to Site 


Site Options Site Pages Site Menu Admin Files 


Networking 


What is Networking? 


Mahara's networking features allow itto communicate with Mahara or Moodle sites running on the same or another machine. If 
networking is enabled, you can use it to configure single-sign-on for users who log on at either Moodle or Mahara. 


WWW Root 
http//mahara.mahoodle.com/ 


Public key 


-----HEGIN CERTIFICATE 
HIICWjCCAiugAwIBAgIBADANBgkqhlkic *0HAQQFADCBpjELHAKCAlUEBhHCTlox 
E2ARBQNYBAqTCldlbGxpbmdob24xDzANBQNYBAGTHIRLIEF]bzEPHAOCAlUEChHG 
THE oYEIhHQZwDOYDVOQLEwIWYWhhomExIzAhBqNVBAHTOCmh0O dHAGL 5tYwWhhomEu 
ИЕ ob29kbGUuY25tHgowKAYIKofIhvoMAQkHEhtubiIlocxSQCclhaCFyYSstYwWhv 
b2Az185jb20wHhoNHDowo DE 1H DozO Mp Wh oNN Dow TET H Do20 TH pr jCBp jELH AM 
AlUEHhHCTLloxEzARBHQWYBAqTICldlbCxpbmdób24xDzANBqWYHACTBlIRIIEFybzEP 
HAOGALUECHNGTHE oYEJhHQ ZwDoYDVOQLEwIWYwWhhomExIzAhBqNYBAHTOmhó dHAG 
Ly St Ywhh omEubiF ob25kbCUvY25tHZowKAYIKofIhvoNAQkHFhtub2Ilo2x5Qclh 
ACFTYSStYWhvb2Az155jb20wgITwDQYIKofIhvoKAQEHBQADqYOAMICIAOCHAKIO 
XaDBHYOyhx£oH qUrpsTHx 120 zhwnEKQ bpey ovr /Y j5 do/Td/ omDqzXY2 оЕ домуз £2 
Y250dI0L/b?hehfWiHBomiKlFDOEKHioHox jxC4qgoxeo?IzogIY2t £fvREl214YP 
ФАА IPgnüU3RP/IGISCSmjRIDUO2OfTRTKVIJAGiHAAEwDOYIXOIIhvoNAQEE 
ATBQ3pG£lfitObexrdez2Z2bHQHTC6SLLdAUzHICidZ2z Js TuHhpuCP етв 
oer SCCHIhWIMTWCZLiy2LqEseCunaVTKEKZkW2RdaEGCxrolfopkmjv5ed?u 
1EFPZOIPBODiSIdfe&ICnTHCKKCO qiTWweKTES 255 sc rOPTIE qo 
-----EMD CERTIFICATE----- 


This public key is automatically generated, and rotated every 28 days 


Public key expires 
12 September 2007, 07:39 PM 


Enable networking 


Yes i$ 


Allow your ara server to communicate with servers running Moodle and other applications. 


Auto-register all hosts 


Lx 


Create an institution record for any host that connects to you, and allow its users to log on 1o Mahara 


Terms and Conditions | Privacy Statement | About | Contact Us 
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1://Basic Networking: Mahara 
Mahara acknowledges the choices that you have 


— ám ahara 


CONFIGURE SITE 


Site Options SitePages SiteMenu Admin Files 
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2://Enable SSO: Mahara 


Click on 'Admin home' to go back to the main 
administration menu, and on that page, in the 
‘Manage Users' section, click on the link to 
‘Institutions’. 


If you are certain that your Mahara site will only ever 
serve one Moodle, click on Edit to update the details 
for the default institution. Otherwise, click оп 'Add 
institution’, to create a new record for the institution 
that is hosting your Moodle. We'll detail the 'Add 
institution’ option, although editing the default 
institution is almost identical. 


Return to Site 


Suspended Users Staff Users Admin Users Admin Notifications Add Users By CSV User Search 


? 

Admininster Institutions 
Institution Authentication plugin 
No Institution 


Add Institution 
ч 
Terms and Conditions | Privacy Statement | About | Contact Us 
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The institution name can be апу word made up of 
only letters. Spaces and numbers are not permitted 
in the institution name. The Institution display name 
can include spaces and numbers. I've opted to give 
my institution the name MahoodleMoodle and the 
display name; Mahoodle Moodle. 


Return to Site 


The authentication plugin can't be configured until 
the institution record has been created, so just ignore 


that for the moment. The default values in the other $ 
at the bottom of the page to save your settings. The 


You are logged in as Admin User (admin) 


page will reappear, and the authentication plugin 
menu will be enabled. 


Admininster Institutions 


Add Institution 


Institution name MahoodleMoodle е 


Institution display name Mahoodle Moodie e 
iy 


Authentication plugin 
imap 3 [+] 


Registration allowed? M ' 


Whether users can register for the system with this institution 


Default account lifetime No end date HJ e 


How long newly created user accounts wil ba usable for before they expire 


Default account inactivity time { No end date E) * 


How long a user account wii remain active without the user logging in 


Warning time for inactivity/expiry a [Weeks — №) E 


The time before user accounts are to expire or become inactive at which a warning message will be sent 
1o them 


Locked fields * 
First Name 
Last Name 
Student ID 
Preferred Name 
Introduction 
Ета! Address (multiple allowed) 
Official Website Address 
Personal Website Address 
Blog Address 


"Oo000000g0g0 


Mahoodle://Integrating Mahara with Moodle 
2://Enable SSO: Mahara 


Note that the Institution name field is gone. It will 
be hidden from both users and administrators from 
this point on. 


Choose xmlrpc from the Authentication plugin 
pulldown menu, and click on the plus-sign beside 
that menu to add a new authentication method. 


A new window will open, displaying the configuration mahara 
options for XMLRPC. 

This plugin can have a parent, but we will configure 

it without one; that means it wll be the only means ——————— 
for users of the Moodle system to log on to their 


You are logged in as Admin User (admin) 


linked Mahara account. 


Admininster Institutions 


Institution display name Mahoodle Moodle 


LM 


Authentication plugin 


LJ 
Registration allowed? M? 


Whether users can register for the system with this institution 


Default account lifetime | No end date HJ * 


How long newly created user accounts wil be usable for before they expire 


Default account inactivity time No end date H) e 


How long в user account will remain active without Ihe user logging in 


Warning time for inactivity/expiry 1 Weeks е 


The time before user accounts are to expire or become inactive a1 which а warning message will be sent 
1o them 


Locked fields * 
First Name 
Last Name 
Student ID 
Preferred Name 
Introduction 
Email Address (multiple allowed) 
Official Website Address 
Personal Website Address 
Blog Address 
Postal Address 


а оооооососоо 
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Configuring the XMLRPC plugin 


A new window will open with configuration options 
for the xmlrpc plugin. 


The authority name will identify this authority to 
you, the administrator. I've called this ‘Mahoodle 
XMLRPC’, although I could just have called it 
XMLRPC because I already know that this authority 
will only authenticate users from the Mahoodle 
institution. 


The parent authority is 'None'. If we had already 
configured an authority for this insitution, and that 
authority was itself canonical (i.e. does not require 
a parent), then it would appear as an option in this 
dropdown list. 


The next field - WWW Root - is absolutely crucial 
to get right, and most problems with Mahara & 
Moodle integration that we've experienced in testing 
are caused by errors in entering this value. In fact 
it's very simple: the WWW Root must be exactly what 
is specified in Moodle's config.php. 


Please take care not to enter а 'www' before the WWW 
root hostname, if there is no www in your wwwroot 
field. While it might be possible to access the Moodle 
site at this URL, this will cause problems for you, 
and will likely prevent networking between the sites 
from working. 


In short — find out what is entered in the config.php 
file of your Moodle and enter exactly that. 


Choose the application that is being hosted at the 
remote site from the pulldown menu — in our case, 
we want to choose Moodle — and then enable some 
networked services by clicking on the checkboxes 
underneath. 


By enabling 'They SSO in’, you're permitting users 
who log on at Moodle to enter your Mahara site 
without having to log on again. 


By enabling 'Update user info on login’, you're asking 
your Mahara server to check that the user hasn't 
changed his details on Moodle each time he logs in, 
and if he has, update his Mahara user record with 
those same details. 


By enabling 'We auto-create users', you can automate 
the process of creating user records, so that a Mahara 


eoo Add an Authority 


фтаһака 


Admininster Authorities 


Authority name Mahoodle XMLRPC 


Parent authority None B е 

WWW root http:/ /moodle.mahoodle.c 
Site name Mahoodle Moodie 
Application Moodle В) * 

Port number 80 

We SSO out pi 

They SSO in ? 


Update user info on login 


We auto-create users 


ПЕЕ (& ! 


They auto-create users 


f Submit Э f Cancet? 


user record is automatically created for every Moodle 
user who clicks on the SSO link to be signed on to 
Mahara. 


In this example, we're going for the most-automated 
option, so we don't have to do any user-setup on our 
Mahara site at all. 


Click on 'Submit'. The window will close and the new 
xmlrpc authentication plugin instance will be listed 
on your 'Administer Institutions' page: 


? 
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Configuring the XMLRPC plugin 


If Mahara has been unable to communicate properly 
with Moodle at the WWW Root that you’ve entered, 
you re likely to see an error message like this one. 


Please double check that you’ve chosen ‘Moodle’ as 
your application, and that the WWW Root you’ve 
entered matches the value in Moodle’s config.php 
file. 

If you’ve managed to configure this correctly, the 
window will disappear when you click ‘Submit’ and 
the authority name you've entered here will appear 
as a new authority on your institution's config page. 


Click 'Submit at the bottom of the institution's 


configuration page to complete SSO setup on Mahara. 


Add an Authority 


фтпаңаңа 


Admininster Authorities 


Authority name Mahoodle XMLRPC " 
Parent authority None ES 5 
WWW root уенын лымын] * 


An error occurred while retneving tha public kay from tha remote server. 
Рувазе ensure that the Application and WWW Root fields are correct, and that networking is enabled on tne remote host 


Site name Mahoodle Moodle ? 
Application “Moodle Е) * 

Port number 80 a 
We SSO out zk 

They SSO in (i 

Update user info on login м е 

We auto-create users M * 


They auto-create users E 
Submit ) | Cancel | 


| 
| 
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Next we go back to our Moodle app, and again — 
ensure that we're logged on as an administrator. rnel ‘Apple Build а Web ..er on Linux E2  AudioSearch 


From the Site Administration menu, choose 
Networking >> Peers: 


LiteWorks 


Lifeworks > Administration ^ Networking ^ Peers ( Blocks editing оп ) 


teeta mad) 


B Notifications You can choose to register all hosts that try to connect to you automatically. This means that a 

ео record will appear іп your hosts list for any Moodle site that connects to you and requests your public 
fs key. 

El coumen You have the option below to configure services for 'All Hosts' and by enabling some services there, 

CJ Gades you are able to provide services to any Moodle server indiscriminately. 


© Location Bg Register all hosts (Hub mode) 
Oo Language 
б Modules 
e Security 
P aee 
E Front Page 
O sewer 
Ё5 Networking 
бачан [тенью | 
E Peers Thig-//mahara.mahoodle.c 
B SSO Accass Control 
E Enrolments 
E XML-RPC hosts 
C Reports 
С Miscellaneous 


( Save changes ) 


L Add host ^) 


(Search ) 


Admin bookmarks 


bookmark this page 


@ Moodle Docs for this page 
You are logged in as Admin User (Logout) 


Home 
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2://Enable SSO: Moodle eo Lifeworks: Administration: Networking: Peers 


Ignore the 'Register all hosts' option for now. This [^ A] ‘Trhttp://moodle.mahoodle.com/admin/mnet/peers.php 


will probably not be relevant to very many Moodle = І pedia Apple Build a Web eron Linux Е2  AudioSearch RegalPal 
operators. 


Under 'Add a new host’, enter the WWW Root value 
from your Mahara site into the field. You can find 
this in the network administration page of your 
Mahara site. 


Lifeworks > Administration > Networking » Peers ( Blocks editing оп ) 


Site Administration Register all hosts (Hub mode) 


You can choose to register all hosts that try to connect to you automatically. This means that a 


Choose 'Mahara' from the dropdown menu, and click 
on 'Add host. Moodle will fetch the public encryption 
key from the Mahara server and display it on the next 


L] 
screen. га ee uma record will appear in your hosts list for any Moodle site that connects to you and requests your public 
= key. 
El КЕЕ You have the option below to configure services for 'All Hosts' and by enabling some services there, 
[е Gedes you are able to provide services to any Moodle server indiscriminately. 
© Location Bg Register all hosts (Hub mode) 
б Language 
Modules ( Save changes ) 
(=) Security 
С secte 
E Front Page All Hosts 
El saver 
— П-ОВ 
В Settings 
E Peers http: / /mahara.mahoodle.c 
В 530 Access Contro! : LL 
E Enroiments (Add host ^) 
= XML-RPC hosts 
[mn] Reports 


O Miscellaneous 


( Search ) 


Admin bookmarks 


bookmark this page 
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The 'Site' value on this page is editable. You can 
change this to something descriptive that will identify 
your Mahara site to you and your students. In the 
screenshot, I'm about to delete ‘Home - ' from the 
Site name. 


If there are no error messages on the screen, and the 
"Public key' field is filled with '-----BEGIN 
CERTIFICATE -----' followed by some seemingly 
random text, then your Moodle has successfully 
retrieved Mahara's public encryption key. 


If Moodle reports an error in retrieving Mahara's 
key, check that the value entered in the Hostname 
field of this page is the same as the WWW Root value 
displayed on Mahara's Networking page. 


If everything looks ok, click on 'Save changes'. The 
same page will reappear, with a new tab listed at the 
top. Click on this 'Services' tab to setup SSO with 
Mahara. 


Lifeworks: Administration: Networking: Peers 


ЕЕЗ б fh http://moodle.mahoodle.com/admin/mnet/peers.php 
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Lifeworks > Administration - Networking » Peers 


Site Administration 


B Notifications 
б Users 
e Courses 
Oo Grades 
Oo Location 
E Language 
б Modules 
Oo Securily 
C Appearance 
E Front Page 
O saver 
e Networking 
E Settings 
E Paors 
# 580 Accass Control 
E Enrolments 
E XML-RPC hosis 
El Reports 
C Miscetiansous 


f Search ) 


Admin bookmarks 


bookmark this page 


( Review Host Details 


Site: [ Home - Mahara | 
it) 


Hostname: http: / /mahara.mahoodle.com 


Public key: 
Public key BEGIN CERTIFICATE 
MoCwi/CCAlUgAWIBAGiSADANSgkankiC SwOSAQOFADCBpjELMAKCA LUEBhMCTI ox 


| EARSQNVBAGTCIC-SCxpbmd052 4 xDzANBGNVSACTSIRIIEFybZEPMADCA  UECP MG 
TWFoYXJnMQSwOQYOVQQLEwZNYWhhcmExtzAnBgNVBAM TC mhOdHAE y St YWhhcmEu 
nWrob2SkbCUuYZStMSowKAY]KaZImecNACKSE tuni ji Cx QG 1 haGEyYS StYWhy 

| 52525552 0wHncNMDcwODETMDczOT MyWhcNMDcwOTEyMDczO T MyW)CBp]ELMAACG 
A1UESRMCTIoXEZARBQNVBAgTCIdIbCxpbendOb2 4xDzANSqNVBACTSAIIEFyDz EP 
MAOCATUEChMCTWECYXJ/^MOSwDQYDVQQLEwZNYWhhcmExIzAFSgNVBAM TCmhOdHAG 


LyStYWhhncmEub WE oD? SkbGUuY 29r SowKAYJKaZIhvcNACQKBEhtub3]IcCxSQC in 
aCFyYSStYWrvo2RsZSS)b20woZBwDQYIKoZIPvc NACQEBBQADGYDAMIC, к. 

| XaDBYQyhxAOMGOwpdTMx L202bNnEKQbpOyovr Y] Sdo (Та стОд3КУВо®дйзууъїВ 
Y29adlÓL/b7h «hZW38Bom3XIFDOEKHIUMox|xC4qQxro 7I20qI Y 2t*vRS 18 1 4YP 
OAPAcevaZPgnU3R? /Icj8GSmj&XDUc2of 7R T K VXJAGMSAAEwOQYJKoZIhvcNAQEE 


Ws уЗ gESeCunzV7KEKZKN2&daECxrc LQoKniv9e47u 
fe&jCnn + CXKKoOqW7NweK TfS B&9ssrQP7 ЕДС 
END CERTIFICATE 


Wednesday, 12 September 2007, 07:39 PM 


127.0.0.1 
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The first service listed; Moodle networked enrollment' 
is only relevant to Moodles networking with other 
Moodles, so we can ignore that for now. 


In the section titled 'SSO (Identity Provider)', you 
want to tick the 'Publish' checkbox. Moodle is going 
to publish a service to Mahara which identifies users 
to Mahara. You can leave the 'Subscribe' box 
unchecked. 


In the section titled 'SSO (Service Provider)’, click on 
'Subscribe' to tick that checkbox. Moodle users will 
subscribe to services that are provided by the Mahara 
site. 


That's all for now — click on 'Save changes'. 


Lifeworks: Administration: Networking: Peers 
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Lifeworks > Administration > Networking - Peers 


Site Administration 


( Blocks editing оп) 


[ Review Host Details | Services | 


E Notifications 
E Users 
C courses Moodle Networked Enrolment 
[m Grad 
oO a Publish this service to allow administrators at Mahara to enrol their students in courses you have created on your 
Location server, 
oO 
e wangunan • Dependency: You must also publish the SSO (Service Provider) service to Mahara. 
Modules + Dependency: You must also subscribe to the SSO (Identity Provider) service on Mahara. 
| Security 
z Арреагапса Subscribe to this service to be able to enrol your students in courses on Mahara. 
Front P. 
сл етае « Dependency: You must also subscribe to the SSO (Service Provider) service on Mahara. 
Server • Dependency: You must also publish the SSO (Identity Provider) service to Mahara. 
e Networking 
" Settings Г) Publish 
n роет 2 Subscribe 
В SSO Access Contro! 
8 Enrolments 
B XML-RPC hosis SSO (Identity Provider) 
Cl Reports 


Publish this service to allow your users to roam to the Mahara Moodle site without having to re-login there. 
• Dependency: You must also subscribe to the SSO (Service Provider) service on Mahara. 


C Miscetlansous 
L Search ) 


Admin bookmarks 


bookmark ihis page Я Publish 
Г) Subscribe 


Subscribe to this service to allow authenticated users from Mahara to access your site without having to re-login. 
« Dependency: You must also publish the SSO (Service Provider) service to Mahara. 


SSO (Service Provider) 


Publish this service to allow authenticated users from Mahara to access your site without having to re-login. 
• Dependency: You must also subscribe to the SSO (Identity Provider) service on Mahara. 


Subscribe to this service to allow your users to roam to the Mahara Moodle site without having to re-login there. 
e Dependency: You must also publish the SSO (Identity Provider) service to Mahara. 


Г) Publish 
F Subscribe 


( Save changes d 
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2://Enable SSO: Moodle O = = Lifeworks: Administration: Users: Authentication = 


In the Site Administration panel, click on Users and 
choose Authentication from the menu. 


Enable the Moodle Network Authentication plugin, 
and click on 'Settings'. 


Life Works 


Lifeworks ^ Administration » Users » Authentication ( Blocks editing оп ) 
Please choose the authentication plugins you wish to use and arrange them in order of failthrough. 
B Notifications 
E* Users Name Enable Up/Down Settings 
E Authentication 
Manual accounts Settin 
© Accounts ngs 
[E Permissions No login Settings 
C courses Email-based self-registration a Settings 
E Grades Setti 
п Location > ings 
Oo Language External database Ee Settings 
El Modules = — 
Cl security : эё 
C Appearance МАР 41 Settings 
Oo Front Page 
АР Setti 
El sewer У ngs 
[ша] Networking à = E: Settings 
e Reports NIN Setti 
- INTE же ings 
Miscellaneous 
No Eu Settings 
( Search ) PAM (Pluggable Authentication Module e Settings 
[Admin bookmarks г E ES 
Admin bookmarks 
DIU [Eu Settings 
bookmark this page "а : T Settings 


Common settings 


Self registration | Email-based self-registration $ | 
regaterauth 
Choose which auth plugin will handle user self-registration. 


Guest login button © Show 2! 


Questioginbutton 


You can hide or show the guest login button on the login page. 


Alternate Login URL 
aliemateloginur 

If you enter a URL here, it will be used as the login page for this site. The page 
should contain a form which has the action property set to 
"http://moodle.mahoodle.com/login/index.php' and return fields username and 
password. 
Be careful not to enter an incorrect URL as you may lock yourself out of this site. 
Leave this setting blank to use the default login page. 


FE 


Instructions 


auth instructions 


‘admin /auth.php?sesskey=SuaMxfcdgN&action=enable&auth=mnet™ АНИ =F 


Mahoodle://Integrating Mahara with Moodle 
2://Enable SSO: Moodle 


We don't actually want to change any of the values 
in this page, but we can see that it lists the sites that 
our users have the option of roaming to. Our Mahara 
site is listed here. 


eWorks 


Lifeworks ^ Administration » Users » Authentication 


Site Administration 


E Notifications 

e Users 
Authentication 
e Accounts 
С Permissions 

С Courses 

о Grades 

CJ Location 

Oo Language 

a Modules 

C Security 

e Appearance 

[ка Front Page 

Oo Serer 

б Networking 

Oo Reports 

Oo Miscellaneous 


( Search ) 


Admin bookmarks 


bookmark this page 


Lifeworks: Administration: Users: Authentication 


(Blocks editing on. .) 


Moodle Network authentication 


Users are authenticated according to the web of trust defined in your Moodle 
Network settings. 


The timeout in seconds for authentication over the XMLRPC 
transport. 


Auto add remote ^ No [№ 1$) When set to Yes, а local user record is auto-created when a 
users: remote user logs in for the first time. 


These host's users can roam in to your site: 
Your users can roam out to these hosts: 
Mahara: http://mahara.mahoodle.com 


& 


( Save changes ) 
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The final step in enabling SSO with Mahara, is to 
give your users the permission to roam to other sites | Apple Build a Web ...er on Linux Е2  AudioSearch 
in the Moodle Roles system. Choose Users >> | 
Permissions >> Define Roles from the Site 
Administration menu. 


Click on the 'Edit' button for the 'Authenticated User' Life Works 
role. In practice of course you're free to provide access 
to the Mahara server to a restricted group of users; Lifeworks Administration > Users > Permissions > Define roles 


perhaps just the students on a particular course. Gr. maa 


| AA] fii http://moodle.mahoodle.com/admin/roles/manage.php 


B Notifications 
& Users 
E Authentication 

о Accounts 

E Permissions Administrator Administrators can usually do anything on the site, in all Bax 4 
и Define roles courses, 
T Assign global roles Course creator Course creators can create new courses and teach in coursecreator a x FY 
® User policies them. 


Courses Teacher Teachers can do anything within a course, including ediingteacher қ x Фф 4 
Grades changing the activities and grading students. 


Name Description 


Location Non-editing teacher Non-editing teachers can teach in courses and grade teacher “х1 
Language students, but may not alter activities. 


Modules Student Students generally have less privileges within a course. student = TL 
Security 
Guest Guests have minimal privileges and usually can not enter guest = T4 


text anywhere. 
Front Page 
Server Authenticated user All logged in users. 4 T 
Networking 
Reports (Adda new role -) кїп. 
Miscellaneous 


Appearance 
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L Search ) 


Admin bookmarks 
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-om/admin/roles/manage.php?action=edit&roleid= 7” 


Mahoodle://Integrating Mahara with Moodle 
2://Enable SSO: Moodle 


Scroll to the option 'Roam to a remote Moodle’ and 
click the second radio button to enable this. Click on 
"Save changes' at the bottom of the screen. 
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Now that everything is set up to allow our users to | | A А] frhttp://moodie.mahoodie.com/ (©; Google 
roam to Mahara, we just have to provide them with ernel pedia Apple Builda Web .eronlinux E2  AudioSearch RegalPalms 
a link to bring them to the site. 


Navigate back to your Moodle homepage and click 
on "Turn editing on’. 


(Turn editing 25 
The LifeWorks Forum is here for you to post questions for the Customer 


Support team. Check out the discussion topics below to see the type of Р 
questions people have air йы Welcome to the LifeWorks e-Campus. 


If you would like to post a question of your own, you must register and log in 
to the site. 


August 2007 


Tue Wed Тш 
Available Courses 


How to configure Moodle 


An introduction to installing and 
configuring a Moodie installation to 
support your leaming activities. 


Site Administration 


You are logged in as Admn User (Logout) 
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2://Enable SSO: Moodle eo —— LifeWorks е-сатриз 
Once you choose the 'Network servers' block from 
the Blocks menu, your Mahara server should be listed 1 Apple Builda Web er on Linux £2  AudioSearch 


in it, alongside its mini-icon. 


$ Mahara 
(Turn editing ой ) 


= 


/Site Description 
The LifeWorks Forum is here for you to post questions for the Customer 
Support team. Check out the discussion topics below to see the type of 


questions people have already asked. Welcome to the Life Works Camus. о 


If you would like to post a question of your own, you must register and log in 
to the site. 


> а 
@ 57 а de) @ | Add an activity... E 


August 2007 


Available Courses Tae, Dues 


1 
7 E 
How to configure Moodie 
* [x] 
An introduction to installing and 2 
configuring a Moodie installation to = 


support your leaming activities. = 
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У Add... 
Activities 
Admin bookmarks 
Blog Menu 
Blog Tags 
Courses 
Global Search 
HTML 
Latest News 
Loan calculator 
Login 
Main Menu 
Mentees 
Messages 
Network Servers 
Online Users 
People 


Random Glossary Entry 
Site Administration Recent Activity 
86 Remote RSS Feeds 


Search Forums 
Upcoming Events 


You are logged in as Admin User (Logout) 
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2://Enable SSO: Moodle 


We'll need some users to allow us to test our new 
SSO configuration. I’ve created records for a couple 
of names you might recognise. 


Now that we're done configuring SSO, we can log off 
from both Moodle and Mahara, and log back into 
Moodle (only) as Rosa Parks. 


Lifeworks ^ Administration > Users > Accounts > Browse list of users 


B Notifications 
e Users 
™ Authentication 
=> Accounts 
© Browse list of users 


B Add в new user 
© Upload usars 
© User profile fields 
Oo Permissions 

Oo Courses 

EJ Grades 

Oo Location 

Oo Language 

C Modules 

Oo Securty 

Oo Appearance 

E Front Page 

б Server 

С Networking 

Oo Reports 

e Miscellaneous 


( Search ) 


Admin bookmarks 


bookmark thes page 


ГА А | Trhttp://moodle.mahoodle.com/admin/user.php 
pedia Apple Build a Web ...егоп linux Е2  AudioSearch 


Lifeworks: Administration: Users: Accounts: Browse list of users 


Фа: Google 


( Blocks editing оп ) 


First name: AIABCOEFGHIJKLMNOPQRSTUVWXYZ 
Surname: Al ABCDEF GHIJKLMNOPOQRSTUVWXYZ 
( Search ) 
First name / Last 
Qu'en Email address City /town Country а 
Abraham Lincoln a.lincoln@example.com Springfield ^ United States of Never Edit Delete 
rica 
Admin User donal@catalyst.net.nz Wellington Мем Zealand now Edit 
Rosa Parks r.parks(2example.com Detroit United States of Never Edit Delete 
America 
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| AA] Ti http://moodle.mahoodle.com/ 


ipedia Apple Build a Web ...er on Linux 


Our Mahara server is listed in the ‘Network Servers’ 
block. Click on ‘Mahara’ to initiate SSO. 


Welcome to the LifeWorks e-Campus. 


The LifeWorks Forum is here for you to post questions for the Customer 
Support team. Check out the discussion topics below to see the type of 
questions people have already asked. 


If you would like to post a question of your own, you must register and log in August 2007 
to the site. 


How to configure Moodle 


Tue Че} Tu 
1 2 


An introduction to installing and 
configuring a Moodie installation to 
support your leaming activities. 


You are logged in as Rosa Parks (Logout) 
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2://Enable SSO: Moodle Pon Home - Mahara 
We arrive at the Mahara welcome page, and we're <» с + л А @nttp://manara.mahoodie.com/ ОД: Google 

told that *You аге logged in as Rosa". The ‘logout’ LI] How To Compile A Kernel Wikipedia Apple Build a Web ..eron Linux E2  AudioSearch RegalPalms Bolton  Creelan >» 
option appears at the top of the screen. © ноте – Mahara 


You are logged in as Rosa 


о 
Welcome to Mahara Search My Portfolio 


connecting users and creating online communities. Mahara provides you with the tools to set up a personal! 
leaming and development environment. 


For more information you can read About Mahara or altematively please feel free to Contact Us. 


Mahara is a fully featured electronic portfolio, weblog, resume builder and social networking system, Co 


Terms and Conditions | Privacy Statement | About | Contact Us 
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2://Enable SSO: Moodle 


Click on ^My Profile" to visit the user details for Rosa 
Parks. Note that the image that I uploaded to Rosa's 
Moodle profile has been carried over to Mahara along 
with her other details. 

In these first two sections, we enabled networking 
on both Moodle and Mahara, and we configured 
Mahara to accept users who SSO via a Moodle. 

You are logged in as Rosa 


In the next section, we'll configure Mahara to allow ES 
Moodle's users to log in directly to Mahara, or to log 
in via 830, ае they ehnoos 


E] Search My Portfolio о 
Profile Е Edit My Resumé » 5 Edit Profile Icons » 


First Name 
| Rosa 


Last Name 
| Parks 
Student ID 
| 
Preferred Name 
| 
Introduction 
B Z U sx | A-9 aby 


= 101 | ЗЕМ 
| — Font family -- ГС — Font size — ` E -- Format -- $) 


з 


t 
Email Address (multiple allowed) 
© r.parksGexample.com [x] 
Add email address е 
Official Website Address 
E: 


| 
Personal Website Address 


Blog Address | 


Postal Address 


Mahoodle://Integrating Mahara with Moodle 
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Log on to Mahara as the admin user, and navigate 
to the configuration page for the institution that we 
created earlier. 


In the pulldown menu of authentication plugins, Return to Site 
select ‘internal’ and click on the ‘plus sign’ button 
beside the menu to add the internal authentication 
method to the auth stack. 


An authentication method labelled ‘Internal’ will You are logged in as Admin User (admin) 


because there are no configuration options for internal 


The configuration pop-up window doesn't appear 
. . Suspended Users Staff Users Admin Users Admin Notifications Add Users By CSV User Search 
authentication. 


Click on the ‘up-arrow’ beside ‘Internal’ to move it 
to the top of the stack. 

Now - click on ‘Mahoodle XMLRPC' to reopen the 
window displaying its configuration options. Institution display name ‘Mahoodle Moodie 


Authentication plugin Internal (bd 
Mahoodle XMLRPC Ши 


H 


Admininster Institutions 


Registration allowed? M ' 


Whether users can register for the system wilh thes institution 


Default account lifetime * 


Ном newly created user accounts will be usable for before exmre 
y 


Default account inactivity time EE { No end date m , 


How long a user account will remain active without the user logging in 


Warning time for inactivity/expiry 1 | Weeks HJ ? 


The time before user accounts are to expire or become inactive at which a warming message will be sent 
to them 


Locked fields * 
First Name 
Last Name 
Student ID 
Preferred Name 
Introduction 
Email Address (multiple allowed) 
Official Website Address 
Personal Website Address 
Blog Address 
Postal Address 
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In the pulldown menu of Parent Authroities, the 
Internal plugin will now appear. Select ‘Internal’ as 
the parent authority for this XMLRPC instance, and 
click on submit. 


This confirms to Mahara that users from this 
institution who SSO in from Moodle are also 
permitted to sign on directly with a username and 
password, and be authenticated against the internal 
Mahara database. 


That's all we need to do here - log out of Mahara, and 
log into Moodle as Rosa Parks. 


Edit an Authority 


= 


Smaharea 


Admininster Authorities 


Authority name 
Parent authority 
WWW root 

Site name 
Application 

Port number 


We SSO out 

They SSO In 

Update user info on login 
We auto-create users 


They auto-create users 


| Mahoodle XMLRPC] 1% 


internal is) d 


http://moodle.mahoodle.c * 


Mahoodle Moodle ® 


Moodle He) e 


(Submit ) (Cancel ) 


N | 
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This time, when we try to SSO from Moodle to 
Mahara, we're prompted to ‘change our password’. 
Mahara has noticed that we don’t have a password 
to use with the ‘internal’ authentication plugin yet, 
and is prompting us to provide one. 


Once we supply a password to Mahara, we can log 
out of the application and then log back in directly 
without going through Moodle. 


If we’re already logged on at Moodle, we can still 
click on the link in the Network Hosts block to be 
signed on to Mahara automatically. 


Mahara ships with three authentication plugins; 
internal, XMLRPC and IMAP. The IMAP plugin is 


designed to authenticate users against an eMail server. 


The application is designed to allow new 
authentication plugins to be added fairly simply. 


eoo Mahara 


Е 


> | [© | |+ | | А А | Th http: / /mahara.mahoodle.com/ © а: Google 


х 


[I] How To Com 


pile A Kernel Wikipedia Apple Builda Web..eronlinux E2 AudioSearch RegalPalms Bolton Creelan 


Ио Proie-Mahara | о 


You are logged in as Rosa 


Change password 


You are required to change your password before you can proceed. 


New Password: 
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Confirm password 


‘Change password \ 
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Log out from Moodle, and re-authenticate as the 
admin user. From the admin menu, click on 
Networking >> Peers, to view the details for your 
configured hosts. Our Mahara server will appear in 
this list. 


Click on the Mahara site name, to review the host’s 
details, and then click on ‘Services’ to review the 
configured services for this host. 


Let’s switch around our options - instead of publishing 
the SSO (Identity Provider) service, let’s subscribe 
to it, and instead of subscribing to Mahara’s SSO 
(Service Provider) Service, let’s publish that service. 


In this way, we provide an opportunity for users to 

access Moodle via their Mahara account. The users 

that could formerly SSO from Moodle to Mahara will 
no longer be able to do that, but they will be able to 
log into both Moodle and Mahara directly. 


Lifeworks: Administration: Networking: Peers === 
OQ) 
а [+] [^ А] Ттр: / |moodle.mahoodle.com/admin/mnet/mnet services.php?step-list © ^ Q~- Google b. 

? _ Ном To Compile А Kernel Wikipedia Apple Build a Web ...er on Linux E2  AudioSearch  RegalPalms Bolton Creelan 


O Front Page "| 
zi жы, rkin Subscribe to this service to be able to enrol your students in courses on Mahara. 
g 

= Settings * Dependency: You must also subscribe to the SSO (Service Provider) service on 

" Peers Mahara. 

в SSO Access Control * Dependency: You must also publish the SSO (Identity Provider) service to Mahara. 

= Enrolments 

* XML-RPC hosts C Publish 
O Reports Г) Subscribe 


CJ Miscellaneous 


f Search \ SSO (Identity Provider) 


Publish this service to allow your users to roam to the Mahara Moodle site without having to re- 


pte 


• Dependency: You must also subscribe to the SSO (Service Provider) service on 
bookmark this page Mahara. 


Subscribe to this service to allow authenticated users from Mahara to access your site without 
having to re-login. 


* Dependency: You must also publish the SSO (Service Provider) service to Mahara. 


1 Publish 
М Subscribe 


SSO (Service Provider) 


Publish this service to allow authenticated users from Mahara to access your site without 
having to re-login. 


* Dependency: You must also subscribe to the SSO (Identity Provider) service on 
Mahara. 
Subscribe to this service to allow your users to roam to the Mahara Moodle site without having 
to re-login there. 
* Dependency: You must also publish the SSO (Identity Provider) service to Mahara. 


М Publish 
Г} Subscribe 


( Save changes 


= = 
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4://SSO into Moodle № = — Lifeworks: Administration: Users: Authentication 
From the admin menu, click on Users >> ell +} Tih http://moodle.mahoodle.com/admin/auth_config.php?sesskey=RE4zYac@ ^! Q7 Google 
„ т. = 


Authentication, and click on Moodle Network Kernel Wikipedia Apple Builda Web eron Linux E2  AudioSearch RegalPalms Bolton 
Authentication’s details link, to review the details for . - ar | a | 

that plugin. 

In the pulldown menu, choose ‘Yes’ for “Auto add 
remote users”. You can see that the plugin reports lifeWorks 
that “These hosts’ users can roam into your site”, and 
that our Mahara host is listed there. Lifeworks > Administration > Users > Authentication ( Blocks editing оп ) 


Now we should be ready to create a user account on | эпе Administration =| 


Mahara, and use it to SSO to Moodle. We could use 


Moodie Network authentication 


DP 2 Notificatio 
the Rosa Parks record on Mahara, but on arriving at Cw" 
Moodle for the first time, Moodle would create (authentication a a a ce o 
another user record for Rosa, leading to confusion. E: Accounis 
Permissions ss 
This is a result of the two applications reversing the © courses iue c БШ S TM eee шн D 
. . . . . "n je] 
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Log into Mahara as the admin user, and navigate to 

the config options for the institution we created 

earlier. Open the XMLRPC configuration window, ma aRa 
and reverse the checkboxes so that ‘We SSO out’ and 

‘They auto-create users’ are both checked. 


Edit an Authority =3 


Admininster Authorities 


Authority name Mahoodle XMLRPC 
Parent authority “internal $)? 
WWW root http://moodie.mahoodle.c * 
Site name Mahoodle Moodie 8 
Application “Moodie $) * 
Port number 80 " 
We SSO out M * 
They SSO in е 
Update user info оп login е * 
We auto-create users E < 
v ” 
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Create a new user record - I've created a record for 
Woody Guthrie. Log off from the admin account, and 
log back in as the new user you have just created. 
Make sure that you've signed out from Moodle. 


You are logged in as Woody Guthrie 
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4://SSO into Moodle өөө Home - Mahara 
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site. Click on the link to be signed on at Moodle. o га Home- Mahara | SS. Е. 


Welcome to Mahara 


Mahara is a fully featured electronic portfolio, weblog, resume builder and social networking 
system, connecting users and creating online communities. Mahara provides you with the 
tools to set up a personal learning and development environment. 


For more information you can read About Mahara or alternatively please feel free to Contact 
Us. 
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At this point, you should find yourself signed on at EE е] Mttp://moodie.mahoodle.com/ 
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You are logged in as Woody Guthne from Mahara (Logout) 
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A word on Authentication Plugins 


An institution can have any number of authenticating 
authorities, and Mahara will try to authenticate users 
against those one at a time until it hits upon an 
authority that knows the user. An authority could be 
any system that already stores username and 
password information for your users, for example, a 
student management system, an email server, an 
LDAP server or just a plain old database. 


Mahara may be able to access the same authority by 
different means, for example, if your user data is in 
a Moodle database, a database-authentication plugin 
could access that database and compare the 

credentials your users supply to the values in Moodle. 


In this example, the Moodle database is the canonical 
or 'parent' store of data for username/password 
information. 


Users who login to Mahara, and are authenticated 
against a Moodle database, might also log into Moodle 
and click on a special link to be automatically signed 
on to Mahara. This feature is provided by a Mahara 
authentication plugin called 'xmlrpc', and because 
the users' credentials are stored in the Moodle 
database, the database authentication plugin is said 
to be the parent of the xmlrpc authentication plugin. 


Authentication stacks are an advanced topic that 
won't be relevant to most Moodle and Mahara 
deployments. We cover this topic further in chapter 
4. 
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